CVE-2013-0219

{"id": "CVE-2013-0219", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.7, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-02-24T19:55:01.237", "references": [{"url": "http://git.fedorahosted.org/cgit/sssd.git/commit/?id=020bf88fd1c5bdac8fc671b37c7118f5378c7047", "source": "secalert@redhat.com"}, {"url": "http://git.fedorahosted.org/cgit/sssd.git/commit/?id=3843b284cd3e8f88327772ebebc7249990fd87b9", "source": "secalert@redhat.com"}, {"url": "http://git.fedorahosted.org/cgit/sssd.git/commit/?id=94cbf1cfb0f88c967f1fb0a4cf23723148868e4a", "source": "secalert@redhat.com"}, {"url": "http://git.fedorahosted.org/cgit/sssd.git/commit/?id=e864d914a44a37016736554e9257c06b18c57d37", "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098434.html", "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098613.html", "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-0508.html", "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1319.html", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/51928", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/52315", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/57539", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=884254", "source": "secalert@redhat.com"}, {"url": "https://fedorahosted.org/sssd/ticket/1782", "source": "secalert@redhat.com"}, {"url": "https://fedorahosted.org/sssd/wiki/Releases/Notes-1.9.4", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "System Security Services Daemon (SSSD) before 1.9.4, when (1) creating, (2) copying, or (3) removing a user home directory tree, allows local users to create, modify, or delete arbitrary files via a symlink attack on another user's files."}, {"lang": "es", "value": "System Security Services Daemon (SSSD) anterior a v1.9.4, cuando (1) se crea, (2) copia, o (3) elimina el directorio home de usuario, permite a usuarios locales crear, modificar o eliminar ficheros arbitrarios mediante un ataque de enlace simb\u00f3licos sobre otros ficheros del usuario."}], "lastModified": "2023-02-13T04:38:43.623", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fedoraproject:sssd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71D26FCE-B49C-440F-9BDD-545346B34F03", "versionEndIncluding": "1.9.3"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "516466B9-5183-4F5B-A64E-836B365AC015"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BE12795-5A6C-4EF6-86E1-A04FFEF853B0"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BC55E33-CF2F-4749-8CAE-510A35697B87"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F37B00AF-51D5-4FBC-8335-23FB49A2BE97"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B2D3AAE-5B5B-4737-B24C-873B1B28DDF1"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D55E385B-87E0-4088-878F-0466BF05FC37"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E85F048-BEB3-4D35-954E-E4FFF2B7A9F7"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB6E070E-DB2B-4AFB-9E80-1061D51E572D"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C6B15E7-C558-4B8C-9F25-B6B0F7D4DAE3"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4135B52-D2B0-4B38-AB94-294EDCF65C0D"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FA1CC29-EDF9-41F7-9EDC-79B7F7DAF232"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E096D40-0543-423E-B3DD-21EEFA1760FA"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.99.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D519F093-C7E2-4F98-B64E-457B41FC52F8"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:0.99.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F978466E-8AEA-4FA8-AD0F-2798CD5EEF03"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A301168-1345-4FE9-9E0E-8AADD698C59A"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8C082CF-28D6-40EE-B7F4-C91B84596731"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4ECB1E88-66A4-49DD-837D-9B3ACE435E4A"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "45EE589F-FC9B-4C54-A1DD-2843B24BB3D0"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD38D75C-996F-4C16-A781-976E26825894"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0183AE7C-E9E6-43D4-BBD8-1746C6FF6A94"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F27CA10-EDB9-4490-B99F-686D355CDC4D"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.0.99:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BADE09B6-1BC9-4332-B7D6-0D50A5A69E59"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B08A8BE5-381D-4A4F-9D54-6231B17793B2"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0C9BCBA-8A11-49CA-A019-16F78A65F369"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB18B12A-82C6-4F97-B9B1-AA1390EFB129"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.1.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "64127A7C-A984-4BD5-B3E6-3976AFAE07B3"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.1.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12A5A326-2387-468B-BDF5-ACD2D104F6D0"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D347DF6E-C425-444B-A25D-7958D7B4EAC6"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3DC738E-A68E-4ED9-8A5F-0888A4B6180B"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F40B3E3B-E803-44B3-99E8-DD6A08F018B7"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23F5EDBE-2D5F-4878-B7D8-4F9A6872DBA0"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "062BBB63-39E9-41F6-BF9F-141FA8033E26"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.2.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD371750-E79F-432F-81DF-397A0F200E75"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ABAEE5B2-54DA-4FB5-AD57-D00CAF17EE35"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEABA055-C1EF-4E8D-88DC-FB542D6F91C0"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "313BCCE7-6B8C-47DD-BB54-7B390D131BB5"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9507DCBF-45C9-43BF-8E89-9C480EBC4F09"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C38007C8-061C-4D6D-BC6B-83475E165A3C"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8F39928-292C-4B1E-849F-4CB7534558B7"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19ACB702-62F5-4614-9CB9-AC07CCEBB399"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0524C067-9992-40F1-BC7A-EE382251151B"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74298682-9BFF-4F81-B387-BA0B036619E5"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC55E83E-AAA5-4228-8283-57EBFCE1EEE8"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFB0D128-F08B-41C1-B8A1-3FD7845B3F37"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30FC0A62-9332-46F8-8415-50742BBDFC88"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C0E2D4D-7C14-45E8-9E6D-BE7357AD1FA4"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFA871AC-FD8D-4F1E-9F84-B35E08568E5B"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B1FF7F0-6E19-4FB4-9E90-8188C1841C5D"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7065AF03-99E9-4DE2-B58D-CBB15D5FCCE7"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F918F06-9860-4959-98C7-9E922A92424E"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14D2B8A8-9F5C-4970-BD6D-FEB6E4E9D419"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3021B870-7141-442E-9ABC-CD0538374CCD"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D2C6D84-CD12-4201-BCCB-2613865734E2"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F903EC2A-630A-4CE0-A4BE-2128A1A449B2"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE291086-6188-48A2-9A71-317AE4150263"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.5.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F39C4381-3F9C-4A18-BAA0-6768E2227096"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA72408F-B759-4238-ADBE-5896EB8D9359"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CDA8D7C7-BA09-432B-9956-3EAFEB56B039"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C841BCE7-ACFA-48FC-9916-6743D53121BE"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82059BE6-E075-42B3-A29E-AE88BBE1BE32"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCDCCFAB-5293-43F9-AD9F-4FB06E58FC0F"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B55D998-4648-42C4-BC90-8D2D3DF92805"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "082EECD4-0BA0-4467-9EEB-847A34A04906"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.0:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97360F6C-BA99-4A58-94E1-FBDAEF4DF040"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.0:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35CF5A7B-CB64-41E5-9B14-DE396F321A4E"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.0:beta3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "44525CA2-BB2C-41F4-93A0-F0CF336C3011"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79971450-4FA4-4A0B-9761-F6C261D98C3D"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C6667AA-89D8-4EB2-ACED-9D37882D528D"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "348E8F83-EA66-4F90-A340-6925F1A29E50"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D6FADD7-F0CF-4F78-8126-DDAFB098D943"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "602BA6C0-A0B1-4573-92EB-FFB35E40ED2F"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.8.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFCFE36E-24BE-4092-B535-2EB8612E5EFF"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "288395D1-C084-48F5-B266-24CF02151F1E"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB813D7A-8048-4C24-BAED-D85999710F0B"}, {"criteria": "cpe:2.3:a:fedoraproject:sssd:1.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF7C04C5-0777-4ED5-A40B-81FCF625ECCF"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA9B3CC0-DF1C-4A86-B2A3-A9D428A5A6E6"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"}], "operator": "OR"}]}], "evaluatorComment": "Per https://access.redhat.com/security/cve/CVE-2013-0219\r\n\r\nThis issue affects the version of sssd shipped with Red Hat Enterprise Linux 5 and 6.\r\n", "sourceIdentifier": "secalert@redhat.com"}